Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/35bd25de-ab78-47aa-9434-447786946db2.roa
File: 35bd25de-ab78-47aa-9434-447786946db2.roa (raw, json)
Hash identifier: m9KNX4lWQZD6uV2Er7WSwhUXthd7/aJXBB1DxIruR50=
Subject key identifier: E0:4F:18:BA:CB:6B:67:22:45:CF:EA:CE:33:0C:C0:6B:41:40:06:BD
Certificate issuer: /CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Certificate serial: 24D6ED0B21EECF37EFB60E0C091A8F22D0641504
Authority key identifier: 55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/35bd25de-ab78-47aa-9434-447786946db2.roa
Signing time: Mon 25 Sep 2023 00:00:00 +0000
ROA not before: Mon 25 Sep 2023 00:00:00 +0000
ROA not after: Mon 30 Oct 2023 23:59:59 +0000
asID: 400098
IP address blocks: 199.36.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
24:d6:ed:0b:21:ee:cf:37:ef:b6:0e:0c:09:1a:8f:22:d0:64:15:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d
Validity
Not Before: Sep 25 00:00:00 2023 GMT
Not After : Oct 30 23:59:59 2023 GMT
Subject: serialNumber=0200abf56f853e05e9dfe3843b4aa37ee8cd9fb69f3eb94df54b9e50167d5307, CN=c0ce23ea-43fc-4be4-beee-c01478122a0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:49:8b:70:38:1e:40:9b:d4:68:6b:d0:b9:74:
c7:8e:bd:1c:7c:41:ae:94:e4:d8:10:0c:3b:9f:9a:
a0:6d:e2:70:f0:e0:88:57:cf:3b:2a:71:23:5a:fd:
ff:26:20:8c:79:df:33:bf:fe:13:07:eb:7a:54:a1:
ba:3c:ff:5a:a8:a2:d1:b2:df:f4:94:f4:66:fc:10:
e9:47:dd:13:94:b4:2c:c5:80:f6:47:97:d5:8b:8b:
10:3b:db:20:28:1e:16:a2:3a:4e:2e:19:21:d7:0f:
50:a8:d5:a0:8e:66:85:53:89:00:4e:35:2f:7d:44:
23:68:ea:68:9e:63:79:bb:c8:70:df:da:3e:a1:cb:
1b:ab:fe:ae:36:2e:b8:37:b8:29:04:59:e9:34:eb:
e3:25:5b:a0:65:df:1b:9f:cd:d4:21:02:dd:12:aa:
19:39:ab:88:ef:1f:44:66:29:8d:9b:d0:31:c5:d5:
f5:cb:f1:e4:10:b5:8a:de:3b:ed:2b:36:32:b6:ca:
d5:57:56:80:7c:62:47:d0:58:ca:53:54:7e:4c:48:
04:bb:42:c2:c0:a3:89:2b:86:1e:ca:70:96:fe:d3:
a7:e8:17:13:f3:81:0f:f7:63:be:2c:17:32:9c:58:
f6:2e:87:80:22:e3:a7:20:92:60:01:6d:f1:2f:c8:
90:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:4F:18:BA:CB:6B:67:22:45:CF:EA:CE:33:0C:C0:6B:41:40:06:BD
X509v3 Authority Key Identifier:
keyid:55:A8:DD:45:D9:44:13:F9:D1:92:F5:2C:63:CE:8C:FB:C6:14:96:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/1433ebff-dfd6-4c5c-b7ff-99c85139d4a8/278aab878f2662ce14e905e18ebcb7522f92b3684bc4865b4d.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/35bd25de-ab78-47aa-9434-447786946db2.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/16f1ffee-7461-4674-bb05-fddefa9a02c6/JmLOFOkF4Y68t1IvkrNoS8SGW00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
199.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
64:1b:45:6a:f2:ae:3d:cf:ec:6a:9d:04:81:48:c8:cf:aa:5f:
92:f0:dc:09:f4:1e:50:44:4b:02:af:b1:4f:75:14:a1:5f:80:
f6:ca:81:6a:01:cd:63:e4:ba:72:a8:d8:5e:c4:8b:d0:88:2b:
aa:6b:70:26:2a:fe:10:63:34:37:2c:ec:3d:bd:2f:b3:20:2b:
9d:36:5d:69:d3:3f:e9:b6:e0:10:71:d6:9a:68:7d:ae:56:4e:
02:77:49:ab:c4:5b:46:69:0d:60:54:70:08:d8:ac:75:0d:6d:
fa:fa:cb:db:42:49:2b:59:ff:dc:a6:b0:a3:aa:2d:04:78:de:
cb:66:83:e7:be:be:7e:dd:c4:e1:d8:fd:fe:92:6e:b1:c2:cc:
d2:64:88:d1:26:25:ac:c8:bf:4a:35:79:9b:43:67:9b:90:06:
45:a1:c0:1d:0e:d6:c0:e9:bf:81:11:af:f2:ac:0e:38:0c:3b:
cb:bd:ca:e8:50:1f:fa:76:17:ef:a0:6f:7a:3c:ae:93:09:87:
26:5b:38:be:91:a9:8b:43:e1:d2:95:0a:25:3b:cd:cb:a9:1a:
dd:c9:bc:6c:f2:7e:65:66:64:1f:f9:74:c9:a9:7d:6c:cd:11:
b6:1a:f8:9c:3d:ca:33:48:e7:39:21:03:07:11:0d:27:0d:7d:
3c:cc:01:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:35:13 2023 by rpki-client on console.sobornost.net